|
Work item:
|
X.GSBDaaS
|
|
Subject/title:
|
Guidelines on security of Big Data as a Service
|
|
Status:
|
[Carried to next study period]
|
|
Approval process:
|
TAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
New
|
|
Equivalent number:
|
-
|
|
Timing:
|
-
|
|
Liaison:
|
ITU-T SG 13, ISO | IEC JTC 1/SC 27/WG4 and WG5
|
|
Supporting members:
|
Alcatel-Lucent Shanghai Bell, China, China Mobile, ETRI, United Kingdom, ZTE.
|
|
Summary:
|
Big data based on cloud computing provides the capabilities to collect, store, analyze, visualize and handle varieties of large volume datasets, which cannot be rapidly transferred and analyzed using traditional technologies. e.g. Big Data as a Service (as defined in [ITU-T Y.3600], big data as a service (BDaaS) is a cloud service category in which the capabilities provided to the cloud service customer are the ability to collect, store, analyse, visualize and manage data using big data.).
Data storage, analysis, calculation and other data services based on the big data platform, are developing rapidly in recent years. Big data platform acts as an important "place" to provide BDaaS, consequently its own security is especially important.
Architectures combined infrastructure platform with big data software (such as Hadoop, spark and elasticsearch) are widely used in existing big data platform, which provides storage, calculation and other basic big data processing functions for upper big data applications. Among them, open source big data software lacks of security consideration at the beginning of the design, and new technologies introduced by big data analysis result in "failure" of traditional security protection measures, which makes the platform's own security cannot be guaranteed. For example, because of the way the data is collected, processed and visualized, there are new security requirements in BD context. This is taking place amid shifts in technology infrastructure, e.g., distributed computing systems, non-relational data storage, audit, and disaster recovery for big data platform/systems.This recommendation aims to specify security protection measures of big data platform, regulate security protection measures in the construction and operation process of big data platform, and promote the development of big data services. These measures in the framework will take into account on the national legal and regulatory obligations in individual member states in which the big data platforms operate.
The work will proceed using the methodology standardized in clause 10 of Recommendation ITU-T X.1601.
|
|
Comment:
|
-
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2016-09-12 15:42:29
|
|
Last update:
2016-09-25 18:34:11
|
|
